Nullify pentests REST and GraphQL APIs, server-side rendered HTML applications, single-page applications, and custom TCP/UDP protocols.
REST APIs
Yes
Full support with or without OpenAPI definitions.
GraphQL APIs
Introspection, mutation testing, authorization matrix analysis.
SSR HTML Apps
Server-side rendered web applications (Django, Rails, Express, etc.).
SPAs
Single-page applications (React, Vue, Angular).
SOAP APIs
Not yet
Register interest with the Nullify team.
WebSockets
Event-driven assessments are on the roadmap.
gRPC
Reach out if you would like to participate in design partners.
Custom TCP/UDP Protocols
Custom protocol testing on the roadmap.
Last updated 2 months ago
